Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E3CD64008FC11EEB43D843B4AD9E6FC.roa
File: 4E3CD64008FC11EEB43D843B4AD9E6FC.roa (raw, json)
Hash identifier: NX/iVE9pmCtfYbc1WvSwVZX6c7DDZZYIlZMSJ5TZW2Y=
Subject key identifier: C5:10:6C:0B:3F:38:71:1C:71:ED:09:EF:A8:E9:8D:DD:23:02:F2:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E3CD64008FC11EEB43D843B4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:37:03 +0000
ROA not before: Mon 12 Jun 2023 08:37:00 +0000
ROA not after: Fri 06 Sep 2024 08:37:00 +0000
asID: 131618
IP address blocks: 156.250.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11097 (0x2b59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:37:00 2023 GMT
Not After : Sep 6 08:37:00 2024 GMT
Subject: CN=6486d92f-292c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:69:76:86:f5:6b:ae:e0:84:05:22:66:25:34:
03:e3:68:a9:50:36:bd:9a:e3:d7:08:a5:b3:4b:9b:
38:1c:d7:e7:a2:cc:22:f6:51:01:b7:6c:a6:d3:c1:
10:df:63:ae:a0:e0:e7:f1:ed:f0:ad:95:30:f4:a7:
ba:0f:44:87:b6:09:e6:18:ad:57:19:d0:90:e3:8a:
0d:a5:ae:90:6c:1d:cf:7b:6e:0e:04:5f:c1:3f:5c:
58:53:e6:05:fb:90:2c:e7:d0:2b:2b:3f:50:27:c0:
14:0a:60:b1:6e:99:9d:e9:c2:d6:28:3e:96:2a:c7:
ba:f6:be:70:5a:f1:e8:7c:63:43:84:f5:06:fd:5e:
8c:11:30:12:d7:d1:89:bf:45:0c:10:34:e1:0a:44:
a7:0b:3f:c9:61:90:12:3c:6e:54:39:3b:62:48:6f:
3f:47:5b:cf:c6:67:a0:9f:a9:3b:25:a1:5c:6a:2a:
22:d0:0e:44:21:2e:2d:7a:0d:ac:93:16:b9:22:37:
3c:a3:95:d6:e0:23:de:cb:8a:89:aa:ca:24:6a:ff:
11:25:6e:c8:01:ab:ac:75:07:01:ea:54:83:b0:34:
a9:f6:d4:24:0d:75:60:35:e5:30:6f:48:4f:0a:1a:
03:d0:da:1b:ad:d8:dd:a3:a3:71:e6:18:05:62:29:
97:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:10:6C:0B:3F:38:71:1C:71:ED:09:EF:A8:E9:8D:DD:23:02:F2:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E3CD64008FC11EEB43D843B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.1.0/24
Signature Algorithm: sha256WithRSAEncryption
37:44:70:c9:69:a2:27:c9:32:6f:5a:8b:eb:88:61:ac:00:25:
f4:c7:52:5f:f1:02:28:af:8e:46:60:ad:4e:9a:d5:e9:6b:72:
9a:ad:cf:52:6b:f3:3f:8e:35:c4:2f:df:e2:73:88:04:f5:6b:
c5:bc:95:01:74:eb:33:18:ac:98:e4:56:ab:3f:60:d9:0a:3d:
09:f2:4d:38:85:f3:54:ba:87:a3:ba:90:c7:e4:05:c4:5f:6d:
18:01:9a:2f:f0:8b:a1:d1:df:d0:83:73:32:d7:6e:d5:05:6c:
3e:20:a2:6f:0a:44:a6:fa:d3:5c:95:5a:63:ac:c4:0c:aa:d0:
83:4c:2d:86:09:8f:6a:71:7a:d8:77:74:e1:91:fe:01:8d:0c:
3e:9b:07:15:5a:e9:cb:10:ff:15:57:6b:04:40:be:c6:56:87:
9f:a7:65:c2:f9:f3:2d:2e:91:2d:e8:be:45:01:ef:58:d0:0c:
d1:43:e2:39:b8:9c:fc:a7:44:8a:d5:1d:3f:9c:ea:59:ca:e5:
bb:80:3c:49:e3:03:68:98:e7:47:3f:83:77:4a:6d:51:6a:13:
24:e7:ef:44:9a:35:37:72:95:36:c9:e2:5c:8e:25:2f:a1:67:
2e:e0:c1:63:f2:94:04:c2:a9:2f:e6:d8:02:72:c3:28:df:3b:
b8:bb:b6:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org